On Sat, Sep 26, 2009 at 12:25:32PM +0200, Karsten Bräckelmann wrote:
On Fri, 2009-09-25 at 12:10 -0500, Rich Graves wrote:
The bigger picture: I'm working on some ISP/.edu phishing rules
inspired by the old 419 rules... lots of words and short phrases
indicating an attempt to get our
On 09/26/2009 06:25 AM, Karsten Bräckelmann wrote:
On Fri, 2009-09-25 at 12:10 -0500, Rich Graves wrote:
The bigger picture: I'm working on some ISP/.edu phishing rules
inspired by the old 419 rules... lots of words and short phrases
indicating an attempt to get our account information (either
On Fri, 2009-09-25 at 12:10 -0500, Rich Graves wrote:
The bigger picture: I'm working on some ISP/.edu phishing rules
inspired by the old 419 rules... lots of words and short phrases
indicating an attempt to get our account information (either through
email or free web form sites), and a meta
For HTML content, we can check the length with
eval:html_eval('length', ' 384')
but I don't see anything similar for body or rawbody. For my purposes, the
Content-Length from the spamc connection would do, but it doesn't seem to be
exposed.
I see at least two plugins looking at length:
